Information Security Specialist
Sidley Austin LLP 4.417 reviews - Chicago, IL

This job posting is no longer available on CareerBuilder. Find similar jobs:Information Security Specialist jobs - Sidley Austin jobs

Introduction to Sidley: Sidley Austin LLP is one of the worlds largest full-service law firms, practicing in 18 U.S. and international cities and for the second straight year, Sidley Austin LLP was selected as one of Chicagos Top Workplaces and featured on the Chicago Tribunes annual Top 100 Workplaces list.In addition to being a professionally and personally rewarding workplace, we offer a competitive salary along with a comprehensive benefits package. Our benefits include a generous combined leave program, performance and year-end bonuses, medical and dental plans, 401(k) and retirement plans, and a public transportation benefit. Summary: Reporting to the Information Security Manager, the IT Security Specialist will be responsible for overseeing and supporting the operations of the information security operations center. This position will provide day-to-day monitoring of security events, responding to security alerts, performing incident response, generating reports, supporting and maintaining security technologies, and serving as an internal IT security subject matter expert. The Information Security Specialist will also support the IT Security Architecture and Risk Management functions in implementing security controls to mitigate IT-related risks.Essential Duties and Responsibilities: Monitoring security events from various log sources using a Security Information and Event Monitoring (SIEM) tool.Reviewing security alerts and provide analysis and remediation recommendations.Performing post mortem analysis on logs, traffic flows, and other activities to identify malicious activity.Researching, developing, and keeping abreast of tools, techniques, and process improvements in support of security event detection and incident response.Facilitating/Participating in the SIRT (Security Incident Response Team).Supporting and maintaining security technologies.Supporting ITIL initiatives related to the security services provided to Sidley Austin.Assisting with data collections and e-discovery when necessary.Performing forensics and leveraging forensic tools when necessary.Developing and maintaining policies, standards, and procedures related to security event detection and incident response.Acting as a liaison to managed security service providers.Overseeing the day-to-day activities in the information security operations center.Providing reports and metrics related to the information security operations center.
Qualification Requirements: To perform this job successfully, an individual must be able to perform each Essential Duty and Responsibility (the Essential Duties') satisfactorily. The requirements listed below are representative of the minimum knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the Essential Duties.Education and/or Experience: Required: Bachelor's degree in Infrastructure Assurance, Information Systems, or Computer Science preferred or equivalent experience5+ years experience in the field of IT Security, Information Assurance, or IT AuditingWorking knowledge ISO 27001/27002Demonstrated experience and expertise in one or more of the following areas: computer penetrating testing, web security assessments, intrusion detection/prevention systems, firewalls, security event management Experience with using a SIEM (Security Information and Event Monitoring) toolAbility to analyze security events, perform initial triage, and determine whether the events are false positives or events that require escalationExperience with using forensics toolsUnderstanding of intrusion detection systems and their capabilitiesSecurity Operations and Incident Response handling experienceAbility to work on weekends and after-hours as necessary, especially during security incidents and emergenciesAbility to assess risk factors and advise on vulnerability of an attack from a variety of sourcesWorking knowledge of IT management frameworks such as Control Objectives for Information and Related Technology (COBIT) and/or Information Technology Infrastructure Library (ITIL)Experience developing, deploying and integrating security policy and standards documentationAbility to analyze and identify IT-related risksPreferred: At least one of the following certifications: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Information Systems Manager (CISM), CERT –Certified Computer Security Incident Handler (CSIH)Other Skills and Abilities: In addition to the above, the following may also be required of the successful candidate: Excellent organizational skillsExcellent attention to detailThe use of good judgment and good interpersonal communication skillsWell developed analytical and problem solving skillsWorks harmoniously and effectively with others as part of a teamA self-starter who desires to show ownership and commitment to the jobExercises confidentiality, integrity, and discretion

About this company
4.417 reviews
Sidley Austin LLP is a premier law firm with a practice highly attuned to the ever-changing international landscape. With 1,900 lawyers...